RubyGems - aserto-rails - Versions diffs - 0.0.1 → 0.20.1 - Mend

aserto-rails 0.0.1 → 0.20.1

Files changed (5) hide show

checksums.yaml +4 -4
data/README.md +23 -14
data/VERSION +1 -1
data/lib/aserto/rails/controller_additions.rb +1 -1
metadata +5 -5

checksums.yaml CHANGED Viewed

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: 2c80c8f7b8f213573d3e79b76e70e98747046dd617a7a5ccb53def1da90119be
-  data.tar.gz: 18446a39215b54a1d401ebda2e7603d82934c3e7dcc4825d6af7a966f006bbbc
+  metadata.gz: dbb7151353f86f941690b382de5e1d5f81076db081262abeb7dbc55c45745c66
+  data.tar.gz: a7aa53b6275c4613aa367b77c568c8641d9e55b5c1a5c0a2205a91eb72e29f71
 SHA512:
-  metadata.gz: 2c7436cec3d05adc828ce7a4a420c0e597e0eef4cd4f3a4848ea8c6cc229da3eb26f1c6db08d6993202bd12898331b1d1a084f5fcf196ce1df70849f7505dfdc
-  data.tar.gz: e2e539042d697de666858e9df0ed0d651d9cf248e750088f9fa2a3e595cd8e9d48e1e5879f2ee2640ab1c96bf1201c70bb09a9265d89f750ba1fcb1459064d33
+  metadata.gz: 853876ec44491170671af35673e1b32b26f02c79ca6d8dfdc9c5ec4eac0074d7c7d62cfb99193583f5ca96790d1805fbe2a5e2873d043d571f8490a0117c7055
+  data.tar.gz: fd7ca8c2b5250bddcc7314da3b114c35cb13166af2b73899c81174a748b1dad6c416a158f6ece38268ca7610702450a700c9e7dba1d170db80842e62c190e251

data/README.md CHANGED Viewed

@@ -1,5 +1,10 @@
 # Aserto Rails
+[![Gem Version](https://badge.fury.io/rb/aserto-rails.svg)](https://badge.fury.io/rb/aserto-rails)
+[![ci](https://github.com/aserto-dev/aserto-rails/actions/workflows/ci.yaml/badge.svg)](https://github.com/aserto-dev/aserto-rails/actions/workflows/ci.yaml)
+[![slack](https://img.shields.io/badge/slack-Aserto%20Community-brightgreen)](https://asertocommunity.slack.com
+)
 Aserto authorization library for Ruby and Ruby on Rails.
 Built on top of [aserto](https://github.com/aserto-dev/aserto-ruby) and [aserto-grpc-authz](https://github.com/aserto-dev/ruby-grpc-authz).
@@ -26,7 +31,7 @@ gem install aserto-rails
 ```
 ## Configuration
-The following configuration settings are required for the authorization middleware:
+The following configuration settings are required for authorization:
  - policy_id
  - tenant_id
  - authorizer_api_key
@@ -34,26 +39,26 @@ The following configuration settings are required for the authorization middlewa
 These settings can be retrieved from the [Policy Settings](https://console.aserto.com/ui/policies) page of your Aserto account.
-The middleware accepts the following optional parameters:
+Optional parameters:
 | Parameter name | Default value | Description |
 | -------------- | ------------- | ----------- |
 | service_url | `"authorizer.prod.aserto.com:8443"` | Sets the URL for the authorizer endpoint. |
-| decision | `"allowed"` | The decision that will be used by the middleware when creating an authorizer request. |
-| logger | `STDOUT` | The logger to be used by the middleware. |
+| decision | `"allowed"` | The decision that will be used when executing an authorizer request. |
+| logger | `STDOUT` | The logger to be used. |
 | identity_mapping | `{ type: :none }` | The strategy for retrieveing the identity, possible values: `:jwt, :sub, :none` |
 ## Identity
-To determine the identity of the user, the middleware can be configured to use a JWT token or a claim using the `identity_mapping` config.
+To determine the identity of the user, the gem can be configured to use a JWT token or a claim using the `identity_mapping` config.
 ```ruby
-# configure the middleware to use a JWT token form the `my-auth-header` header.
+# configure the gem to use a JWT token form the `my-auth-header` header.
 config.identity_mapping = {
   type: :jwt,
   from: "my-auth-header",
 }
 ```
 ```ruby
-# configure the middleware to use a claim from the JWT token.
+# configure the gem to use a claim from the JWT token.
 # This will decode the JWT token and extract the `sub` field from payload.
 config.identity_mapping = {
   type: :sub,
@@ -76,7 +81,7 @@ end
 ```
 ## URL path to policy mapping
-By default, when computing the policy path, the middleware:
+By default, when computing the policy path:
 * converts all slashes to dots
 * converts any character that is not alpha, digit, dot or underscore to underscore
 * converts uppercase characters in the URL path to lowercases
@@ -96,7 +101,7 @@ end
 ```
 ## Resource
-A resource can be any structured data that the authorization policy uses to evaluate decisions. By default, middleware do not include a resource in authorization calls.
+A resource can be any structured data that the authorization policy uses to evaluate decisions. By default, gem do not include a resource in authorization calls.
 This behavior can be overwritten by providing a custom function:
@@ -114,13 +119,14 @@ end
 # config/initializers/aserto.rb
 require "aserto/rails"
-Rails.application.config.middleware.use Aserto::Authorization do |config|
+Aserto.configure do |config|
   config.enabled = true
-  config.policy_id = "my-policy-id"
-  config.tenant_id = "my-tenant-id"
+  config.policy_name = "my-policy-name"
+  config.instance_label = "my-instance"
   config.authorizer_api_key = Rails.application.credentials.aserto[:authorizer_api_key]
   config.policy_root = "peoplefinder"
-  config.service_url = "authorizer.eng.aserto.com:8443"
+  config.service_url = "localhost:8282"
+  config.cert_path = "/path/to/topaz/cert.crt"
   config.decision = "allowed"
   config.logger = Rails.logger
   config.identity_mapping = {
@@ -141,12 +147,15 @@ def show
 end
 ```
-Setting this for every action can be tedious, therefore the `aserto_authorize_resource` method is provided to automatically authorize all actions in a RESTful style resource controller.
+Setting this for every action can be tedious, therefore the `aserto_authorize_resource` method is provided to
+automatically authorize all actions in a RESTful style resource controller.
 It will use a before action to load the resource into an instance variable and authorize it for every action.
 ```ruby
 class PostsController < ApplicationController
   aserto_authorize_resource
+  # aserto_authorize_resource only: %i[show]
+  # aserto_authorize_resource except: %i[index]
   def show
     # getting a single post authorized

data/VERSION CHANGED Viewed

	@@ -1 +1 @@
1	- 0.0.1
1	+ 0.20.1

data/lib/aserto/rails/controller_additions.rb CHANGED Viewed

@@ -44,7 +44,7 @@ module Aserto
         if resource
           Aserto.with_resource_mapper do
             {
-              resource: resource.as_json
+              resource: resource.as_json.transform_keys(&:to_s)
             }
           end
         end

metadata CHANGED Viewed

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: aserto-rails
 version: !ruby/object:Gem::Version
-  version: 0.0.1
+  version: 0.20.1
 platform: ruby
 authors:
 - Aserto
 autorequire:
 bindir: bin
 cert_chain: []
-date: 2022-07-27 00:00:00.000000000 Z
+date: 2022-11-28 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: aserto
@@ -16,14 +16,14 @@ dependencies:
     requirements:
     - - "~>"
       - !ruby/object:Gem::Version
-        version: 0.0.4
+        version: 0.20.2
   type: :runtime
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
     - - "~>"
       - !ruby/object:Gem::Version
-        version: 0.0.4
+        version: 0.20.2
 - !ruby/object:Gem::Dependency
   name: appraisal
   requirement: !ruby/object:Gem::Requirement
@@ -173,7 +173,7 @@ required_rubygems_version: !ruby/object:Gem::Requirement
     - !ruby/object:Gem::Version
       version: '0'
 requirements: []
-rubygems_version: 3.3.7
+rubygems_version: 3.3.26
 signing_key:
 specification_version: 4
 summary: Aserto authorization library for Ruby and Ruby on Rails